CVE-2021-43453

2022-04-0720:23:52

mitre

www.cve.org

9.3 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

60.8%

JSON

A Heap-based Buffer Overflow vulnerability exists in JerryScript 2.4.0 and prior versions via an out-of-bounds read in parser_parse_for_statement_start in the js-parser-statm.c file. This issue is similar to CVE-2020-29657.

References

github.com/jerryscript-project/jerryscript/issues/4754